[BESebastian]

> Case in point: my wife wanted to surprise me one day and saw that I had domains expiring while I was out of cell reception on a business trip. She obviously has all the necessary to verify she is my wife, and has access to my domains. If she used this to do something bad, this would be a different story. Instead, she was able to have a good conversation with someone who ended up giving her discount codes because she "knew I used them, but didn't know where to get them" and she wouldn't make the purchase until she saved at least 35% as I always said I did, minimum. All my domains got renewed, with a new card being added just to be sure it wasn't using money I didn't authorize - no matter who called. She is afraid of breaking things and still got through the process with positive experiences!

Here's your horror story.

They allowed an unverified (by the account holder) third party to make changes to your account.

That's fucking terrifying.